1. Home
  2. CVE Database
  3. CVE-2014-3340
MEDIUM · 4.0

CVE-2014-3340

Directory traversal vulnerability in an unspecified PHP script in the server in Cisco WebEx MeetMeNow allows remote authenticated users to read arbitrary files via a crafted request, aka Bug ID CSCuo1...

Vulnerability Description

Directory traversal vulnerability in an unspecified PHP script in the server in Cisco WebEx MeetMeNow allows remote authenticated users to read arbitrary files via a crafted request, aka Bug ID CSCuo16166.

CVSS Score

4.0

MEDIUM

AV:N/AC:L/Au:S/C:P/I:N/A:N
Confidentiality
PARTIAL
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
CiscoWebex Meetmenow-

Related Weaknesses (CWE)

CWE-22

References

FAQ

What is CVE-2014-3340?

CVE-2014-3340 is a vulnerability with a CVSS score of 4.0 (MEDIUM). Directory traversal vulnerability in an unspecified PHP script in the server in Cisco WebEx MeetMeNow allows remote authenticated users to read arbitrary files via a crafted request, aka Bug ID CSCuo1...

How severe is CVE-2014-3340?

CVE-2014-3340 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2014-3340?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Webex Meetmenow.